04-13-2013 10:24 PM
hi all,
i bought recently a new asa 5515x, i'm also new to it especially if i can have user login to internet before they can use the internet. my 5515 security license is a plus license. and also if that user management can be integrated with active directory 2008 r2.
thanks for any comment you may add.
Solved! Go to Solution.
04-13-2013 11:45 PM
You can enable the Cut-Through-Proxy functionality on the ASA for http/https to authenticate the users:
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00807349e7.shtml
Sent from Cisco Technical Support iPad App
04-14-2013 09:48 AM
The ASA should be able to talk to your AD via either LDAP or Kerberos..
And yes, you need the CX to perform content filtering on the ASA itself, or you can look at the Ironport appliances or Cloud Web Security (scansafe) fir additional filtering options
Sent from Cisco Technical Support iPad App
04-13-2013 11:45 PM
You can enable the Cut-Through-Proxy functionality on the ASA for http/https to authenticate the users:
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00807349e7.shtml
Sent from Cisco Technical Support iPad App
04-14-2013 08:50 AM
i appreciated this, thanks!
of course there's a solution to use LDAP or kerberos right?
and if i need a functionality like websense, i need additional software like CX Context-Aware Security?
04-14-2013 09:48 AM
The ASA should be able to talk to your AD via either LDAP or Kerberos..
And yes, you need the CX to perform content filtering on the ASA itself, or you can look at the Ironport appliances or Cloud Web Security (scansafe) fir additional filtering options
Sent from Cisco Technical Support iPad App
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: